[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
SV: [cobalt-security] Advanced warning
- Subject: SV: [cobalt-security] Advanced warning
- From: "Kai Schantz, Euroweb" <kai@xxxxxxxxxx>
- Date: Mon, 25 Jun 2001 12:43:55 +0200
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
This is the message i get still
Forbidden
You don't have permission to access /~gossi/RaQ-security/exploits/apache2.pl
on this server.
Kai
----------------------------------------------------------------------------
----
Apache/1.3.20 Server at owned.lab6.com Port 80
---
On Mon, 25 Jun 2001, Carrie Bartkowiak wrote:
> > An exploit for the Apache hole "Artificially Long Slash Path
> Directory
> > Listing" is out in the public. I've archived it online at;
> > http://owned.lab6.com/~gossi/RaQ-security/exploits/apache2.pl
>
> You don't have permission to access
> /~gossi/RaQ-security/exploits/apache2.pl on this server.
Oh, bollocks. Apache is slightly, ahem, misconfigured on owned. I'll fix
it in a minute.
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security